vbulletin 3.5.4 IE exploit xss

2006-08-04T00:00:00
ID SECURITYVULNS:DOC:13744
Type securityvulns
Reporter Securityvulns
Modified 2006-08-04T00:00:00

Description


XSS vbulletin 3.5.4 With IE

Author:Stefan Group: EnigmaGroup


This is XSS that only works using IE By Saving malicous code as a .pdf and uploading as a attchment on a post. when the attachment is viewed in IE only the code will be executed.